Staff Cloud Security Engineer
Engineering Responsibilities
Design, deploy, and maintain security measures to safeguard our cloud infrastructures across AWS, GCP, and Azure.
Achieve the security of containerized applications through the implementation of Kubernetes and microservices security best practices.
Architect secure container environments, including Kubernetes clusters, Docker setups, and orchestration solutions, emphasizing vulnerability reduction and compliance.
Develop and enforce security policies, standards, and procedures for cloud environments and containerized workloads.
Collaborate with cross-functional teams to integrate security best practices into the software development lifecycle (SDLC) and continuous integration/continuous deployment (CI/CD) pipelines.
Work with the incident response team to investigate and remediate cloud security incidents, providing expertise on cloud-specific attack vectors and mitigation strategies.
Automate security operations and workflows using scripting languages like Python.
Develop and implement security automation solutions to continuously monitor cloud environments for compliance, threats, and performance anomalies.
Conduct regular security assessments, vulnerability scans, and threat modeling for cloud environments. Identify, evaluate, and mitigate risks in cloud infrastructure using automated and manual methods.
Partner closely with DevOps teams to fortify container orchestration platforms and containerized workloads.
Evaluate and recommend new tools, technologies, and methodologies to improve the security posture of the organization’s cloud environments.
Maintain comprehensive documentation on cloud security processes, security controls, architecture diagrams, and risk assessments.
Report security risks, incidents, and findings to leadership and relevant stakeholders.
Collaborate with stakeholders to define project scope, deliverables, and expectations, ensuring alignment with business objectives.
Innovation and Creative Problem Solving
Leverage creativity and technical expertise to design novel security solutions that address complex cloud security challenges.
Think outside the box to solve unique security issues that arise as the company scales and adopts new cloud services.
Take a proactive approach to identifying potential vulnerabilities and threats.
Use advanced tools, AI, machine learning, or custom-built scripts to anticipate future risks and mitigate them before they affect the infrastructure.
Investigate and implement innovative solutions such as AI-driven threat detection, security automation tools, and machine learning models to enhance security operations and reduce manual workloads.
Drive initiatives forward without having direct control of staff.
Qualifications & Experiences
- Bachelor’s degree in computer science, Information Security, or related field.
- Minimum of 7 years of experience working as a Cloud Security Engineer or a similar role.
- In-depth knowledge of cloud computing platforms such as AWS, GCP, and Azure.
- Proficiency in writing scripts and automation using Python.
- Strong understanding of DevSecOps principles and practices.
- Demonstrated experience working with any of the CSPM Platforms like Wiz, Divvy Cloud, Prisma Cloud, Orca, etc. (Wiz is preferred).
- Experience with containerization technologies such as Docker and Kubernetes, including securing Kubernetes clusters and containerized workloads.
- Strong knowledge of work productivity tools like Office 365, Atlassian, etc. is required.
- Excellent communication, presentation, and collaboration skills.
- Relevant security certifications such as AWS Security Engineer, GCP Security Engineer or Azure Security Engineer is a plus.
Hybrid Work Environment
Hybrid work environment. Must be based in the WBD’s office, a minimum of three days/week.
Compensation
Pay Range: $115,780.00 - $215,020.00 salary per year.